John Ray, Dir. of Product Mgmt, Thales; Alex Truskovsky, Dir. of Strategy, ISARA; Tim Hollebeek, Tech Strategist, DigiCert
The security of the Internet as a whole is at risk with the onset of large-scale quantum computing is looming. While next-generation of cryptography standards are in progress, how can we begin securing everything that connects online now to reduce the risk associated with this emerging threat? In order for a website’s SSL certificate to be trusted, there first needs to be a trusted certificate authority’s root certificate physically embedded into devices. This is a complicated process for certificate authorities. In order for a new root to be embedded into multiple operating systems, there’s several operational steps required such as settling legal agreements, manufacturing new hardware with the root or delivering hardware-wide firmware updates. This can sometimes take years. Fortunately, stateful hash-based signatures have been approved and standardized by the IETF (and expectedly soon by NIST) and combined with crypto-agile approaches, gives us the ability to tackle this challenge today without starting from step one by embedding entirely new root certificates.
In this webinar, you’ll learn about:
• How the quantum threat impacts internet security and why it is important we begin preparing for it today
• Exploring stateful-hash based signatures, their challenges and how they’ve been solved for use on Thales Luna HSMs
• How crypto-agility combined with stateful hash-based signatures allows you to embed quantum-safe roots today without compromising interoperability